Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: N/oGu6mlGsm4UxUQzWvVr7g+FNq22jX9yXqvVG9BJuU=
Subject key identifier: 7D:8A:A7:77:69:25:2A:11:D9:BE:AD:B1:3A:B5:23:F0:09:A2:97:08
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 0196C7CD42D55CE5C5AEED0FB0FF3E1FE9EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 1438
Signing time: Tue 13 May 2025 04:00:40 +0000
Manifest this update: Tue 13 May 2025 04:00:40 +0000
Manifest next update: Wed 14 May 2025 04:00:40 +0000
Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: 2v7eBjBkaYjcqfVAcr5YSS//geKcaly9ijLPqo7b5wU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cd:42:d5:5c:e5:c5:ae:ed:0f:b0:ff:3e:1f:e9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: May 13 04:00:40 2025 GMT
Not After : May 14 04:00:40 2025 GMT
Subject: CN=7d8aa77769252a11d9beadb13ab523f009a29708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0d:28:46:77:bd:3b:b7:15:e0:5b:79:8a:f1:
e3:b6:49:68:a4:a5:de:61:fa:fe:3e:eb:8c:5b:b0:
56:86:d8:25:56:b5:67:9c:e0:c8:98:d5:e6:ed:70:
33:52:54:12:23:a0:e7:46:51:d3:a6:5d:68:a0:58:
0f:00:a5:a5:37:e5:48:ec:df:e6:09:af:c9:dc:f5:
2d:91:b7:20:d3:ff:e9:29:51:d3:0b:85:fc:cc:05:
72:f1:c6:87:6e:b7:01:3f:cd:64:70:13:f8:49:07:
8e:ae:78:77:fb:75:67:b3:86:92:5f:da:6a:bb:14:
6c:11:c3:f2:a3:1f:59:86:76:ff:01:08:9f:ef:7d:
a2:36:9b:c4:e6:6a:74:9c:9f:04:d4:e2:12:bd:35:
ae:d2:ab:26:1c:70:86:6f:ab:cb:4a:98:2e:ea:d3:
21:a5:1b:37:a9:54:48:8d:56:d6:e8:11:1f:3e:b5:
6e:02:af:f1:82:a3:c8:8a:87:18:54:04:95:16:fe:
b5:b1:c4:47:a2:5a:12:a1:f4:4b:90:65:c2:48:ba:
81:7d:6f:cb:f0:7f:5b:41:fc:57:66:31:a3:7b:39:
fc:66:8f:bd:79:09:47:19:a0:0d:c4:87:8b:a7:e7:
42:9c:ab:87:cf:63:d7:1e:23:26:31:d9:43:01:c2:
07:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:8A:A7:77:69:25:2A:11:D9:BE:AD:B1:3A:B5:23:F0:09:A2:97:08
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:7c:4a:ff:fa:2f:e3:9e:45:3e:79:b4:f4:69:f7:b1:d5:a6:
4f:58:ae:31:9d:31:54:c0:bc:71:f0:4f:d0:da:12:1f:bb:1c:
f6:64:fa:e3:e6:6d:7a:e4:c2:55:1b:27:49:b3:54:66:66:c1:
23:81:28:f7:22:74:55:a9:01:6f:19:fc:27:67:72:a1:56:9c:
c6:1a:d2:ce:14:cb:a5:b2:44:7e:f5:3c:f3:4f:a8:13:0f:4b:
7b:c9:6d:d8:46:49:2f:db:26:9e:2c:70:3a:e3:0a:08:17:d8:
ab:8d:e5:be:3e:dd:f8:6e:3d:01:4f:a2:1a:85:d4:35:5b:1d:
d4:f5:6f:1a:9c:03:ca:2b:42:5c:53:2b:6b:97:0d:2e:46:3b:
20:c6:4e:8b:3a:fa:f0:0b:73:4c:e8:49:6a:98:31:a0:9e:23:
60:db:22:fe:2c:fb:27:71:f7:d4:6c:51:38:2d:2e:8b:ab:c4:
8b:62:3d:45:78:0c:89:ab:54:5d:f6:4d:d2:2e:23:df:c8:54:
42:6b:57:4a:49:c3:24:89:d6:9b:94:12:0e:58:4a:80:eb:32:
8c:fb:60:3d:6d:79:6a:f1:75:5c:1e:2b:24:65:0f:fc:94:37:
4e:de:6e:53:ce:b8:7d:ee:da:35:39:c6:d4:57:10:6a:8b:ed:
89:1a:c2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 10:12:21 2025 by rpki-client